The plan is measured right into a PCR in the Confidential VM's vTPM (which is matched in The real key release coverage within the KMS Along with the anticipated coverage hash for your deployment) and enforced by a hardened container runtime hosted in just Every single occasion. The runtime monitors commands within the Kubernetes Handle aircraft,